When adding a finding like "Bug found @ hehe/hehe.aspx" it does not work because of the information entered in (it doesn't like the "/"). Need to validate and sanitize the information.

Write unit tests

ORG To-do (in table format)

Priority High

TODO

ID

Task

Comment

Complexity

Assigned

Status

Issues with new Authentic 2007 OCX control

Report Contents SPS is not working (conflict with XSD) ,

Keyboard hock not working properly (in axActiveAuthenticControl.@event.ctrlKey , axActiveAuthenticControl.@event.ctrlKey doesn't contain the correct value (i.e. in the case where is ctrlKey pressed and ctrlKey should be true)

Medium

DC

getting there

Enable templates in executive summary to save copying and pasting in new projects

There is an easy and a hard way to do this. The easy is to implement this using template xml files which are copied to the target location (for example a finding or 'Report Content') from a default location (in the current plan the output of a plug-in). The hard way (but much more powerfull) will be to implement this templates using dinamic manipulation of the autentic object (which is something that I haven't figure out how to do)

Medium

Not Assigned

Convert Export functionality into a Plug-in

Should be easy to do since all code is already there

Low

DC

Verify all current data against a schema and ensure that consistency is maintained (especially with IP Address / DNS Name fields)

Basicaly the issue here is that everytime an xml file is saved, a quick check to the schema should be made. The code to do this already exists (it is in the export data code). This can be done using the authentic component. No need to write code. - Mike

Priority Medium

Task

Comment

Complexity

Assigned

Status

1

Add a default profile with the project files maped to the local disk

Priority Low

Task

Comment

Complexity

Assigned

Status

generated Pdf reports don't appear in the respective ORG window.

[DC]: this doesn't occour all the time and it is due to the fact that the current way used to display the pdf is to open it in the embebed IE control (which sometimes opens the pdf inside it and others in an external window

no idea

Remember the UI dimensions for every window when it closes.

The windows need to remember how they were set so that the next time the program is ran people do not have to resize the windows again. This would be a nice usability addition

easy

|-
! x
|| {Template} || {...} || Medium || Not Assigned

To Map to Priority Tables

Task

Comment

Assigned

Status

1

Del Key should delete newline (and other elements)

2

Add ability to move findings to other targets

3

Sort of tracking views by Issue ID

Enable sorting in the issue tracking screens, to enable easier finding of issues when retests are occurring

4

Search (for Issue IDs)

5

Select contacts from a db

6

Automatic Import data (like DSN info)

This can also include task / default messages with links to areas like the OWASP vulnerability pages

7

Data feed for global database spreadsheets

8

Sign application and FOP engine

9

Ensure that within the same project, image folders are unique

11

Add Backup feature for XSLT changes

12

Add upgrade tool

13

Add XSLT search feature

14

Project level tags

15

Image's path are hardcoded on the PDF xslt

Monthly CISO Report.xslt

test.xslt

Bespoke Brief.xslt

Monthly RISO Report.xslt

Outstanding Issues.xslt

16

Document the installation procedure of the Altova XML engine (used for xslt2 queries)

17

Add to FAQ the fact that the errors that show on the current main FOP transformation are ok

18

Convert the current xslt/FOP to the altova engine so that we can use xslt2 queries

19

Modify the tabs on the "Current and Archived Projects" screen so that whenever you click on one it reloads the data

20

Only show up tabs that we have the data set up for

21

Remove all those empty try/catches in authentic.cs

23

Create a Microsoft Word report option

24

Perform a validation against a schema of all current _consolidatedReports files to ensure they are compliant (check in particular dates, IPs and DNS names)

25

Manage the exceptions that occur when you add a finding with a duplicate name more effectively

26

Change the Window menu to have the current open windows in the main menu, rather than as a sub menu

27

Add a find function to the source code editor

28

Add drop down menus to the recommendations section (which links to the recommendations database)

Allow for defaults and templates to be used (especially in the executive summary where all executive summaries should follow the same format)

31

Add in unit tests

32

Implement the deleting of issue xml file

Currently in issue tracking there is a delete button that has not been implemented. Also, on the "Report PDF" tab of the projects form there is a button that will create the issue tracking file which errors out if a version of the file has already been created.